Red Hat Security Advisory 2018-3056-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Issues addressed include a null pointer vulnerability.
e893e36441accabfa64608059478e847abe16e77cea8e5c13de3fac1109eed20PHPTPoint Pharmacy Management System version 1.0 suffers from a remote SQL injection vulnerability.
9d619f3c8e7985f3bbba45f97073cc76e25133924047a9a246896f40c8972e21Red Hat Security Advisory 2018-3107-01 - The wpa_supplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association of the WLAN driver. Issues addressed include a randomization vulnerability.
772878c69907271485fc4ae9eb4422e12124bf9cca9256df46f49bc8f586bf25ZyXEL VMG3312-B10B versions prior to 1.00 (AAPP.7) suffer from a credential disclosure vulnerability.
043dd9f6802d82984a7afef78cd5da2562fb13860ca43e1bd31ad2d12e9cdc30QNAP NetBak Replicator version 4.5.6.0607 suffers from a denial of service vulnerability.
f35e0cbdf9dc55f1eccc4bf23ce82a874470078a6bcc2f5d2cc3126805a2cf7aRed Hat Security Advisory 2018-3052-01 - The wget packages provide the GNU Wget file retrieval utility for HTTP, HTTPS, and FTP protocols. Issues addressed include cookie injection.
f5975ea258c2fe6852d1deedd5e06ccabe1785b100792ed5ddc73c11e571d15aRed Hat Security Advisory 2018-3041-01 - Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Issues addressed include backtracking problems.
97528b03c40aa63be61fcd1e91600cf1e79a1e8c78b38de811ed39065a382919Electricks eCommerce version 1.0 suffers from a remote SQL injection vulnerability.
00c70aaa2d77ff0da8aca0f463a9670c49ffa475ad55d832a19a1c04efdb427eSouth Gate Inn Online Reservation System version 1.0 suffers from a remote SQL injection vulnerability.
968e8e581e9b6f15795838e3752539e1525b73aee422b5dd9e9b2fc23aa05c3c864 bytes small Windows/x64 logger shellcode.
210722795927e610732016e2fc69488ccc4fa0f4f5df5d51b6a6aa8b232119ccRed Hat Security Advisory 2018-3050-01 - The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Issues addressed include Lucky Thirteen and other attack mitigations.
38ca5d2776946623c9c54dd29ef704c3ba47f955d8683b28145b1cc9b2ae8fe7Red Hat Security Advisory 2018-3032-01 - The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Issues addressed include denial of service and null pointer vulnerabilities.
6a61e7e442bb7fe42b576a597775e323dc3d637e3e0e43c99bd72bd161f80495Nutanix AOS and Prism suffer from an SFTP authentication bypass vulnerability.
db1b7758485522391a2551e8ed44a35d72e4628257e92047f3b4e13e8d79ab80Red Hat Security Advisory 2018-3158-01 - The System Security Services Daemon service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch and the Pluggable Authentication Modules interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Issues addressed include an information leak.
2d974d6a6e542ac30db1cad245f5d4b2533f5679dc5993997d02bf1951f64cb4Phrack Viewer Discretion Advised write up called (De)coding an iOS Kernel Vulnerability.
979aa079cb8283ca477d0d485db13bccbf387c96f10497d22d33188aeba38934OpenSSL Security Advisory 20181030 - The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key.
05a2ed82e01a351e7ee8d81681ba9e3431079c9735014757869cd48f08ac8b46This exploit modifies a windows language registry key which causes some windows binaries to stick, including login which makes the session unusable. The key is in HKCU and can be modified without admin rights, but with a bypass UAC, all user sessions can be paralyzed by using reg.exe and user's NTUSER.DAT.
cebc8192e58860f9e56ac23e83917c52d657bce5533347a18906dba9296c9c96PayPal/Credit Card/Debit Card Payment version 1.0 suffers from a remote SQL injection vulnerability.
bb4c744ee54ed5fddb0a37d1715957edacc5ce48f59259d99f3320a3a65df4b4RhinOS CMS version 3.x suffers from an arbitrary file download vulnerability.
cbf35a0f4ec5661b2819f545be169c1558e7f98c44efe9814ee0288b2bf27b8aE-Negosyo System version 1.0 suffers from a remote SQL injection vulnerability.
dbf1c4e37e58eff98d0ab71f1685dc5702f6fb257014072129a45a4355a9d017K-iwi Framework version 1775 suffers from a remote SQL injection vulnerability.
a6776b4459208b990b42f2293b28d392d9cc9b972726a4b7ee8154b55971b354Modbus Slave version 7.0.0 suffers from a denial of service vulnerability.
af71fc2884ac32623befb50350fd285ac9d8bb6be35591c523b9fe0199e6cbe8School Event Management System version 1.0 suffers from a remote SQL injection vulnerability.
9058cf443155c9b1e4826ad0406bcb79a4fd10254c72d5ba4e87ad5c5ff33623Point of Sales (POS) in VB.Net MySQL Database version 1.0 suffers from a remote SQL injection vulnerability.
059e000d8a964af4883dd582a58ddb946307352e6bc2b0bcd0a1960c647826faBakeshop Inventory System in VB.Net and MS Access Database version 1.0 suffers from a remote SQL injection vulnerability.
08e3c0e54a0e19df593015a3983d1f93f61aafd9663e6c838ec7526b765c13ad
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed